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Object du TP 


Le TP sur DNS BIND9 sous Linux vise à familiariser les étudiants avec la configuration 
et la gestion d'un serveur DNS BIND9 sur une distribution Linux. Les objectifs incluent 
l'installation et la configuration de BIND9, la création et la gestion de zone DNS, et la 
compréhension des concepts de sécurité DNS. 


Bindo 


BIND (Berkeley Internet Name Domain) est un logiciel serveur DNS (Domain Name System) 
largement utilisé sur Internet, surtout sur les systèmes UNIX et Linux. Il permet de traduire les noms 
de domaine en adresses IP et vice versa, facilitant ainsi la localisation des ressources en ligne en 
utilisant des noms de domaine plutôt que des adresses IP numériques. BIND prend en charge 
différents types de données DNS, y compris les enregistrements de ressources tels que À, AAAA, MX, 
NS, etc. Il peut être configuré pour fonctionner comme serveur principal ou secondaire pour une 
zone DNS donnée et propose des fonctionnalités avancées telles que la sécurité DNSSEC et les mises 
à jour dynamiques. 
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Configuration de base 


@ root@london: - 


File Edit View Search Terminal Help 


:-# hostnamectl set-hostname Said 
:-# hostname 


:-# nmcli device show 

.DEVICE: 

TYPE: 

. HWADDR : 

.MTU: 

. STATE: 

. CONNECTION: 

. CON-PATH: 
nnection/3 
WIRED-PROPERTIES.CARRIER: 
IP4.ADDRESS[1]: 
IP4,GATEWAY: 


[1]: 


[1]: 


ens33 

ethernet 

00:0C:29:C3:21:5B 

1500 

190 (connected) 

Localhost 
Jorg/freedesktop/NetworkManager /ActiveCo 


on 

192.168.192.1/24 

192.168.61.254 

dst = 169.254.0.0/16, nh = 0.0.0.0, mt = 


192.168.192.1 
fe80::20c:29ff:fec3:215b/64 


Modification de fichier /etc/network/interfaces 


iL& vpuntu 


x] root@london: - 


File Edit View Search Terminal Help 
GNU nano 2.5.3 File: 


ty G ? %) 05:56 


etc/network/interfaces 


# interfaces(5) file used by ifup(8) and ifdown(8) 


auto lo 
iface Lo inet Lloopback 
allow-hotplus eth0 
iface eth0 inet static 

. address 192.168.192.1 
netmask 255,255,255,0 
network 192.168.192.0 
broadcast 192.168.192.255 
gateway 192.168.192.254 
dns-nameservers 192.168.192.1 


allow-hotplug eth1 
iface eth1 inet dhcp 


A Get Help M9 Write Out A Wh 
Qi Exit di] Read File A Replace 


Read 15 Lines 
ere Is 


a Cut Text M] Justify NE Cur Pos 
AU Uncut Text To Spell SE Go To Line 
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Installation du package BIND9 


root@Said: - 


0 # apt-get install bind9 
Reading package lists... Done 
Building dependency tree 
Reading state information... 
Suggested packages: 
bind9-doc 
The following NEW packages will be installed: 
bind9 
6 upgraded, 1 newly installed, 06 to remove and 738 not upgraded. 
eed to get © B/373 kB of archives. 
After this operation, 1 673 kB of additional disk space will be used. 
Preconfiguring packages ... 
Selecting previously unselected package bind9. 
(Reading database ... 200037 files and directories currently installed.) 
Preparing to unpack .../bind9 1%3a9.10.3.dfsg.P4-8ubuntu1.19 amd64.deb ... 
Unpacking bind9 (1:9.10.3.dfsg.P4-8ubuntu1.19) ... 
Processing triggers for ufw (0.35-Oubuntu2) ... 
Processing triggers for ureadahead (0.100.0-19) ... 
Processing triggers for systemd (229-4ubuntu4) ... 
Processing triggers for man-db (2.7.5-1) ... 
Setting up bind9 (1:9.10.3.dfsg.P4-8ubuntu1.19) ... 
Adding group ‘bind' (GID 129) .…. 


: 4 
)TOSatd: 


Done 


Adding system user ‘bind' (UID 121) ... 


Backup de fichier named.conf.local 


[x root@Said: /etc/bind 
npacking bind9 (1:9.10.3.dfsg.P4-8ubuntu1.19) ... 


Processing triggers for 
Processing triggers for 
Processing triggers for 
Processing triggers for 


ufw (0.35-Oubuntu2) ... 
ureadahead (0.100.0-19) ... 
systemd (229-4ubuntu4) ... 
man-db (2.7.5-1) ... 


etting up bind9 (1:9.10.3.dfsg.P4-8ubuntu1.19) ... 
Adding group bind' (GID 129) ..… 


adding system user bind' (UID 121) ..…. 
Adding new user ‘bind' (UID 121) with group ‘bind' 
ot creating home directory ‘/var/cache/bind'. 


rote key file "/etc/bind/rndc.key" 


Processing triggers for ureadahead (0.100.0-19) ... 
Processing triggers for systemd (229-4ubuntu4) ... 
Processing triggers for ufw (0.35-Oubuntu2) ... 
root@Said:-# cd /etc/bind 
id: # ls 
db.root 


bind.keys  db.255 
db.empty 
db.local 


named.conf.default-zones 
named.conf.local 
named.conf .options 


rndc.key 
solutec.ma.zone 
named.conf zones.rfc1918 
# mkdir said 

# cp named.conf.local said/named.conf.local.bak 


2 
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Création de zone DNS 


root@Said: /etc/bind 


db.empty named.conf.local solutec.ma.zone 
db.local named.conf named.conf.options zones.rfc1918 
, mkdir said 
cp named.conf.local said/named.conf.local.bak 
nano named.conf.local 
cat named.conf.local 


/ Do any local configuration here 


| 


[ Consider adding the 1918 zones here, if they are not used in your 


| organization 
finclude "/etc/bind/zones.rfc1918"; 


"said.com" IN { 
ype master; 
île"/etc/bind/said.com.zone"; 


"192.168.192.în-addr.arpa" IN { 
master ; 
"Jetc/bind/said.com.rev'"; 


: 


Modification fichier said.com 


Lx) root@Said: /etc/bind 
GNU nano 2.5.3 etc/bind/said.com.zone Modified 


; BIND data file for local loopback interface 
TTL 604800 
IN SOA localhost. root.localhost. ( 
2 ; Serial 
604800 ; Refresh 
86400 ; Retry 
2419200 ; Expire 
604800 ) ; Negative Cache TTL 


IN said.said.con. 
IN 192.168.192.1 

IN 192.168.192.10 
IN said.said.con. È 


Qt Get Help LL” out M Where Is Cut Text Justify  [ cur Pos 
A A 


M Read File M Replace MU Uncut Textfif To Spell Go To Line 
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Fichier resolv.conf 


| root@Said: /etc/bind 
GNU nano 2.5.3 File: /etc/resolv.conf 


Fi Dynamic resolv.conf(5) file for glibc resolver(3) generated by resolvconf(8) 
a DO NOT EDIT THIS FILE BY HAND -- YOUR CHANGES HILL BE OVERWRITTEN 
nameserver 192.168.192.1 

search said.com 


Démarrer le service BINDo 


oot@Said:/etc/bind# cd 
oot@Said:-# sudo service bind9 restart 


NSlookup 


root@Said:-# nslookup 


192.168.192.1 
192.168.192.1#53 


Said.said.com 
: 192.168.192.1 


VU daLu./e U# 


root@Said:/etc/bind# nslookup 

> 192.168.192.1 

Server: 192.168.192,1 
Address: 192.168.192,1#53 


1.192.168.192.in-addr.arpa name = said.said.con. 
> 
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M Select Command Prompt 


Host Name . a. 
Primary Dns Suffix 
Node Type : : 2: 
IP Routing Enabled. 
WINS Proxy Enabled. 
DNS Suffix Search Lis 


Ethernet adapter Ethernet1: 


Connection-specific DNS Suffix 
Description . 

Physical Address. 

DHCP Enabled. te 
Autoconfiguration Enabled 
Link-local IPv6 Address . 
IPv4 Address. 

Subnet Mask . 

Default Gateway . 

DHCPv6 IAID . 

DHCPv6 Client D 

DNS Servers os 
NetBIOS over Tcpip. 


Test avec la session du client 


client 
said.com 


: Hybrid 
: No 


No 
said.com 


Intel(R) 82574L Gigabit Network Connection #2 


: @0-@C-29-0A-25-F1 

: No 

: Yes 

: fe80::e525:f02e:cûce:f580%2(Preferred) 


192.168.192.10(Preferred) 

255.255.255.0 

192.168.192.1 

33557545 
1-00-01-2D-69-18-57-08-@C-29-@A-25-E7 

192.168.192.1 

Enabled 


Requête Ping 


:\Users\Client>ping 2.168.192.1 

inging 192.168.192.1 with 32 bytes of data: 
from 192.168.192.1: bytes-32 time<ims TTL-64 
from 192.168.192.1: bytes=32 time-1ms TTL=-64 
from 192.168.192.1: bytes=32 time<ims TTL=-64 
from 192.168.192.1: bytes=-32 time<ims TTL-64 


ing statistics for 192.168.192.1: 

Packets: Sent = 4, Receïived = 4, Lost = @ (@% loss), 
pproximate round trip times in milli-seconds: 

Minimum = @ms, Maximum = 1ms, Average = @ms 


:\Users\Client> 
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